robotstxt
2024-10-06 09:29:48
(3 months ago)
20.37.208.254 - - [06/Oct/2024:09:28:55 +0000] "GET /cgi-bin/about.php HTTP/1.1" 404 44607 "-" rt="0 ... show more 20.37.208.254 - - [06/Oct/2024:09:28:55 +0000] "GET /cgi-bin/about.php HTTP/1.1" 404 44607 "-" rt="0.078" "-" "-" h="www.wpsysadmin.com" sn="www.wpsysadmin.com" ru="/cgi-bin/about.php" u="/index.php" ucs="-" ua="unix:/var/run/php/wpsysadmin82.sock" us="404" uct="0.000" urt="0.079"
20.37.208.254 - - [06/Oct/2024:09:29:11 +0000] "GET /cgi-bin/wp-login.php HTTP/1.1" 404 44607 "-" rt="0.154" "-" "-" h="www.wpsysadmin.com" sn="www.wpsysadmin.com" ru="/cgi-bin/wp-login.php" u="/index.php" ucs="-" ua="unix:/var/run/php/wpsysadmin82.sock" us="404" uct="0.000" urt="0.153"
20.37.208.254 - - [06/Oct/2024:09:29:42 +0000] "GET /cgi-bin/xmrlpc.php HTTP/1.1" 404 44607 "-" rt="0.076" "-" "-" h="www.wpsysadmin.com" sn="www.wpsysadmin.com" ru="/cgi-bin/xmrlpc.php" u="/index.php" ucs="-" ua="unix:/var/run/php/wpsysadmin82.sock" us="404" uct="0.000" urt="0.076"
20.37.208.254 - - [06/Oct/2024:09:29:45 +0000] "GET /cgi-bin/index.php HTTP/1.1" 404 5 "-" rt="0.046" "-" "-" h="www.wpsysadmin.com" sn="www.wpsys
... show less
Brute-Force
Web App Attack
URAN Publishing Service
2024-10-06 09:22:30
(3 months ago)
20.37.208.254 - - [06/Oct/2024:12:22:27 +0300] "GET /wp-content/index.php HTTP/1.1" 404 196 "-" "-"< ... show more 20.37.208.254 - - [06/Oct/2024:12:22:27 +0300] "GET /wp-content/index.php HTTP/1.1" 404 196 "-" "-"
20.37.208.254 - - [06/Oct/2024:12:22:29 +0300] "GET /wp-content/plugins/index.php HTTP/1.1" 404 196 "-" "-"
... show less
Web App Attack
Anonymous
2024-10-06 08:48:58
(3 months ago)
20.37.208.254 - - [06/Oct/2024:10:45:07 +0200] "GET /cgi-bin/wp-login.php HTTP/1.1" 302 694 "-" "-"< ... show more 20.37.208.254 - - [06/Oct/2024:10:45:07 +0200] "GET /cgi-bin/wp-login.php HTTP/1.1" 302 694 "-" "-"
20.37.208.254 - - [06/Oct/2024:10:46:09 +0200] "GET /wp-login.php HTTP/1.1" 302 694 "-" "-"
20.37.208.254 - - [06/Oct/2024:10:47:29 +0200] "GET /wp-includes/Text/wp-login.php HTTP/1.1" 302 694 "-" "-"
20.37.208.254 - - [06/Oct/2024:10:47:32 +0200] "GET /wp-includes/Text/Diff/Engine/wp-login.php HTTP/1.1" 302 694 "-" "-"
20.37.208.254 - - [06/Oct/2024:10:47:51 +0200] "GET /wp-includes/css/dist/preferences/wp-login.php HTTP/1.1" 302 694 "-" "-"
20.37.208.254 - - [06/Oct/2024:10:48:38 +0200] "GET /wp-includes/certificates/wp-login.php HTTP/1.1" 302 694 "-" "-"
20.37.208.254 - - [06/Oct/2024:10:48:57 +0200] "GET /wp-admin/images/wp-login.php HTTP/1.1" 302 694 "-" "-"
... show less
Brute-Force
Anonymous
2024-10-05 06:17:26
(3 months ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
Jim Keir
2024-10-05 05:27:42
(3 months ago)
2024-10-05 05:27:42 20.37.208.254 File scanning, blocking 20.37.208.254 for 5 minutes
Web App Attack
Swiptly
2024-10-05 05:20:14
(3 months ago)
Multiple critical ModSecurity events
...
Web Spam
Bad Web Bot
strefapi_com
2024-10-05 03:20:19
(3 months ago)
Brute-force web
...
Hacking
Brute-Force
Web App Attack
Anonymous
2024-10-05 00:26:36
(3 months ago)
wordpress-trap
Web App Attack
Anonymous
2024-10-04 18:47:55
(3 months ago)
Fail2Ban apache-noscript
Bad Web Bot
Major Hostility
2024-10-04 18:10:56
(3 months ago)
"GET /wp-includes/wp-load.php HTTP/1.1" 404
"GET /wp-includes/SimplePie/about.php HTTP/1.1" 40 ... show more "GET /wp-includes/wp-load.php HTTP/1.1" 404
"GET /wp-includes/SimplePie/about.php HTTP/1.1" 404
"GET /wp-admin/includes/index.php HTTP/1.1" 404
"GET /cgi-bin/wp-login.php HTTP/1.1" 404
"GET /options.php HTTP/1.1" 404
"GET /cgi-bin/themes.php HTTP/1.1" 404
"GET /wp-content/themes/admin.php HTTP/1.1" 404
"GET /.well-known/acme-challenge/install.php HTTP/1.1" 404
"GET /test.php HTTP/1.1" 404
"GET /.well-known/plugins.php HTTP/1.1" 404
"GET /wp-includes/blocks/about.php HTTP/1.1" 404
"GET /wp-admin/includes/cloud.php HTTP/1.1" 404
"GET /.well-known/iwpairbj.php HTTP/1.1" 404
"GET /wp-admin/css/colors/blue/blkafewl.php HTTP/1.1" 404
"GET /wp-admin/includes/xmrlpc.php?p= HTTP/1.1" 404
"GET /wp-include show less
Web App Attack
physke
2024-10-04 12:56:31
(3 months ago)
REQUESTED PAGE: /cgi-bin/cgi-bin/about.php
Web App Attack
Hirte
2024-10-04 02:46:46
(3 months ago)
DIS: Web Attack GET /wp-includes/SimplePie/gzdecodes.php.suspected
Web Spam
Hacking
Bad Web Bot
Web App Attack
Anonymous
2024-10-03 21:45:03
(3 months ago)
wordpress-trap
Web App Attack
Anonymous
2024-10-03 14:23:50
(3 months ago)
Scenario: crowdsecurity/http-probing
Web App Attack
ghostwarriors
2024-10-03 14:20:11
(3 months ago)
Webpage scraping
Brute-Force
Bad Web Bot
Web App Attack